Jump to content
Washington DC Message Boards
Sign in to follow this  
Guest Gh05t

winnea.ime - Trojan Uses Windows to Compromise Systems

Recommended Posts

Guest Gh05t

The input method in Windows is now a popular way for hackers to inject malicious code.

 

Security researchers have discovered a Trojan which taps in Windows to over-write installed security software to compromise infected systems.

 

The malware, which poses as a security update, utilizes the input method editor (IME) in Windows to inject a system. IME is commonly used to allow users to enter characters not supported by their keyboard, such as a user with and English-language keyboard looking to enter Chinese characters.

 

“The trojan can install itself as an IME, then it kills any running antivirus processes and deletes the installed antivirus executable files,” according to a write-up by Websense. “The original executable file of this trojan disguises itself as an antivirus update package.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×